Debian
php5 package

php5 5.3.3-4 source package in Debian

Changelog

php5 (5.3.3-4) unstable; urgency=low


  * Cherry pick patches for (Closes: #603751):
    + NULL pointer dereference in ZipArchive::getArchiveComment
      (CVE-2010-3709)
    + utf8_decode xml_utf8_decode vulnerability (CVE-2010-3870)
    + mb_strcut() returns garbage with the excessive length parameter
    (CVE-2010-4156)
    + possible flaw in open_basedir (CVE-2010-3436)
    + segfault in SplFileObject::fscanf
    + memory leak in PDO::FETCH_INTO
    + crash when storing many SPLFixedArray in an array
    + possible crash in php_mssql_get_column_content_without_type()
    + cURL leaks handle and causes assertion error (CURLOPT_STDERR)
    + segfault when optional parameters are not passed in to mssql_connect
    + segfault when ssl stream option capture_peer_cert_chain used
    + crash in GC because of incorrect reference counting
    + crash when calling enchant_broker_get_dict_path before set_path
    + crash in pdo_firebird getAttribute()

 -- Ondřej Surý <email address hidden>  Wed, 17 Nov 2010 10:31:58 +0100

Upload details

Uploaded by:
Debian PHP Maintainers
Uploaded to:
Sid
Original maintainer:
Debian PHP Maintainers
Architectures:
any
Section:
php
Urgency:
Low Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Builds

Downloads

File Size SHA-256 Checksum
php5_5.3.3-4.dsc 2.7 KiB 5ab20e2d43d9db8a0e94959366a0b7c4b46595026b5d0ad066da81576e80b2c2
php5_5.3.3.orig.tar.gz 13.3 MiB a8bf9ce535fa4c3f7acd00ed92ca50be49e9710876649ef26369b0326985833c
php5_5.3.3-4.diff.gz 189.5 KiB 99db8a46e6e81a23f21fb3712c5369e7e1615a8a9ae3eff0e3e46f74492d00a6

No changes file available.

Binary packages built by this source